[Freeipa-devel] [PATCH] 0504 Default read ACIs for Sudo objects
Martin Kosek
mkosek at redhat.com
Mon Apr 7 11:30:02 UTC 2014
On 04/03/2014 12:09 PM, Petr Viktorin wrote:
> Hello,
> This adds read permissions to read Sudo commands, command groups, rules.
>
> Read access is given to all authenticated users.
Looks good. What about "ou=sudoers"? I think we should also allow it in this
patch for authenticated users. This is the tree that clients use to read sudo.
Martin
More information about the Freeipa-devel
mailing list